README.md

In-tree Storage Plugin to CSI Migration Design Doc

Table of Contents

• Summary
  • Glossary
• Motivation
  • Goals
  • Non-Goals
• Proposal
  • Implementation Details/Notes/Constraints
  • Risks and Mitigations
• Graduation Criteria
  • Alpha -> Beta
  • Beta -> GA
• Test Plan
  • Prerequisite testing updates
  • Unit tests
  • Integration/e2e tests
  • Per-driver migration testing
  • Upgrade/Downgrade/Skew Testing
• Production Readiness Review Questionnaire
  • Feature Enablement and Rollback
  • Rollout, Upgrade and Rollback Planning
  • Monitoring Requirements
  • Dependencies
  • Scalability
  • Troubleshooting
• Implementation History

Summary

This document presents a detailed design for migrating in-tree storage plugins to CSI. This will be an opt-in feature turned on at cluster start time that will redirect in-tree plugin operations to a corresponding CSI Driver.

Glossary

• ADC (Attach Detach Controller): Controller binary that handles Attach and Detach portion of a volume lifecycle
• Kubelet: Kubernetes component that runs on each node, it handles the Mounting and Unmounting portion of volume lifecycle
• CSI (Container Storage Interface): An RPC interface that Kubernetes uses to interface with arbitrary 3rd party storage drivers
• In-tree: Code that is compiled into native Kubernetes binaries
• Out-of-tree: Code that is not compiled into Kubernetes binaries, but can be run as Deployments on Kubernetes

Motivation

The Kubernetes volume plugins are currently in-tree meaning all logic and handling for each plugin lives in the Kubernetes codebase itself. With the Container Storage Interface (CSI) the goal is to move those plugins out-of-tree. CSI defines a standard interface for communication between the Container Orchestrator (CO), Kubernetes in our case, and the storage plugins.

As the CSI Spec moves towards GA and more storage plugins are being created and becoming production ready, we will want to migrate our in-tree plugin logic to use CSI plugins instead. This is motivated by the fact that we are currently supporting two versions of each plugin (one in-tree and one CSI), and that we want to eventually transition all storage users to CSI.

In order to do this we need to migrate the internals of the in-tree plugins to call out to CSI Plugins because we will be unable to deprecate the current internal plugin API’s due to Kubernetes API deprecation policies. This will lower cost of development as we only have to maintain one version of each plugin, as well as ease the transition to CSI when we are able to deprecate the internal APIs.

Goals

• Compile all requirements for a successful transition of the in-tree plugins to CSI
  • As little code as possible remains in the Kubernetes Repo
  • In-tree plugin API is untouched, user Pods and PVs continue working after upgrades
  • Minimize user visible changes
• Design a robust mechanism for redirecting in-tree plugin usage to appropriate CSI drivers, while supporting seamless upgrade and downgrade between new Kubernetes version that uses CSI drivers for in-tree volume plugins to an old Kubernetes version that uses old-fashioned volume plugins without CSI.
• Design framework for migration that allows for easy interface extension by in-tree plugin authors to “migrate” their plugins.
  • Migration must be modular so that each plugin can have migration turned on and off separately

Non-Goals

• Design a mechanism for deploying CSI drivers on all systems so that users can use the current storage system the same way they do today without having to do extra set up.
• Implementing CSI Drivers for existing plugins.
• Define set of volume plugins that should be migrated to CSI.
• Implement CSI specific features like volume snapshot for in-tree volume plugins.

Proposal

Implementation Details/Notes/Constraints

The detailed design was originally implemented as a design proposal

Risks and Mitigations

• Performance risks as outlined in design proposal
• ADC and Kubelet synchronization fairly complicated, upgrade path non-trivial - mitigation discussed in design proposal

Graduation Criteria

Alpha -> Beta

• All volume operation paths covered by Migration Shim in Alpha for >= 1 quarter
• Tests outlined in design proposal implemented
• Required CRD and driver installation solved generally

Beta -> GA

• All volume operation paths covered by Migration Shim in Beta for >= 1 quarter without significant issues

Test Plan

[x] I/we understand the owners of the involved components may require updates to existing tests to make this code solid enough prior to committing the changes necessary to implement this enhancement.

Prerequisite testing updates

To enable CSI Migration, the stability of CSI driver need to be ensured as a pre-requisite. Kubernetes sig-storage team created the CSI driver e2e test suite framework to allow each storage provider to run their driver against these tests to ensure functionality of the driver.

In addition, each storage provider should also have their own testing to ensure feature parity between the in-tree plugin and the corresponding CSI driver. This is done on a per-driver basis.

Unit tests

• k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/:
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/translate_test.go
• k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins:
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins/aws_ebs_test.go
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins/azure_disk_test.go
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins/azure_file_test.go
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins/gce_pd_test.go
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins/in_tree_volume_test.go
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins/openstack_cinder_test.go
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins/portworx_test.go
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins/rbd_test.go
  • 2022/06/06 - k8s.io/kubernetes/staging/src/k8s.io/csi-translation-lib/plugins/vsphere_volume_test.go
• k8s.io/kubernetes/pkg/volume/csimigration/
  • 2022/06/06 - k8s.io/kubernetes/pkg/volume/csimigration/plugin_manager_test.go
• k8s.io/kubernetes/pkg/scheduler/framework/plugins/nodevolumelimits/csi.go
  • 2022/06/06 - k8s.io/kubernetes/pkg/scheduler/framework/plugins/nodevolumelimits/csi_test.go
• k8s.io/kubernetes/pkg/volume/csi
  • 2022/06/06 - k8s.io/kubernetes/pkg/volume/csi/csi_attacher_test.go
  • 2022/06/06 - k8s.io/kubernetes/pkg/volume/csi/csi_mounter_test.go
  • 2022/06/06 - k8s.io/kubernetes/pkg/volume/csi/csi_plugin_test.go
• pkg/controller/volume/persistentvolume/
  • 2022/06/06 - pkg/controller/volume/persistentvolume/framework_test.go
  • 2022/06/06 - pkg/controller/volume/persistentvolume/provision_test.go
  • 2022/06/06 - pkg/controller/volume/persistentvolume/pv_controller_test.go
• k8s.io/kubernetes/pkg/volume/csi/nodeinfomanager/
  • 2022/06/06 - k8s.io/kubernetes/pkg/volume/csi/nodeinfomanager/nodeinfomanager_test.go
• k8s.io/kubernetes/pkg/controller/volume/attachdetach/
  • 2022/06/06 - k8s.io/kubernetes/pkg/controller/volume/attachdetach/attach_detach_controller_test.go
• sigs.k8s.io/sig-storage-lib-external-provisioner/v8/controller
  • 2022/06/06 - sigs.k8s.io/sig-storage-lib-external-provisioner/v8/controller/controller_test.go
• github.com/kubernetes-csi/external-provisioner/pkg/controller/
  • 2022/06/06 - github.com/kubernetes-csi/external-provisioner/pkg/controller/controller_test.go

Integration/e2e tests

• GCE-PD CSI Driver: testgrid link
• AWS EBS CSI Driver: testgrid link
• AzureDisk CSI Driver: testgrid link
• AzureDisk CSI Driver on Windows: testgrid link
• AzureFile CSI Driver: testgrid link
• AzureFile CSI Driver on Windows: testgrid link

Per-driver migration testing

We will require each plugin/driver provider to set up public CI to run all existing in-tree plugin driver tests for their migrated driver. The CI should include all tests for the in-tree driver with a focus on tests labeled In-tree Volumes [driver: {inTreePluginName}] with a cluster that has CSI migration enabled with feature flags. The driver authors will be expected to prove (using the tests) that the driver can handle anything the in-tree plugin can including, but not limited to: dynamic provisioning, pre-provisioned volumes, inline volumes, resizing, multivolumes, subpath, volume reconstruction. The onus is on the storage provider to use appropriate infrastructure to run these tests.

If migration is on for that plugin, the test framework will inspect kube-controller-manager and kubelet metrics to make sure that the CSI driver is servicing the operations. This enables the test suite to programatically confirm migration status. The framework must also observe through metrics that none of the in-tree code is being called.

The above is done by checking that no in-tree plugin code is emitting metrics when migration is on. We will also confirm that metrics are being emitted in general by confirming the existence of an indicator metric.

Passing these tests in Public CI is the main graduation criteria for the CSIMigration{provider} flag to Beta.

Upgrade/Downgrade/Skew Testing

The Kubernetes community will have test clusters brought up that have different feature flags enabled on different components (ADC and Kubelet). Once these feature flag skew configurations are brought up the test itself would have to know what configuration it’s running in and validate the expected result.

Configurations to test:

ADC	Kubelet	Expected Result
ADC Migration On	Kubelet Migration On	Fully migrated - result should be same as “Migration Shim Testing” above
ADC Migration On	Kubelet Migration Off (or Kubelet version too low)	No calls made to driver. All operations serviced by in-tree plugin
ADC Migration Off	Kubelet Migration On	Not supported config - Undefined behavior
ADC Migration Off	Kubelet Migration Off	No calls made to driver. All operations service by in-tree plugin

Additionally, the community will craft a test where a cluster should be able to run through all plugin tests, do a complete upgrade to a version with CSI Migration turned on, then run through all the plugin tests again and verify that there is no issue.

Running this set of tests is optional for a per-provider basis. We would recommend it for providing extra confidence but the framework for upgrade/downgrade is provider agnostic.

Production Readiness Review Questionnaire

Feature Enablement and Rollback

• How can this feature be enabled / disabled in a live cluster?

  • Feature gate (also fill in values in kep.yaml)
    • Feature gate name: CSIMigration, CSIMigration{vendor}, InTreePlugin{vendor}Unregister
    • Components depending on the feature gate: kubelet, kube-controller-manager, kube-scheduler
    • Please refer to this design doc on the Step to enable the feature

• Does enabling the feature change any default behavior?

  Yes and No.

  • If only CSIMigration feature flag is enabled, nothing will change on the cluster behavior. CSIMigration is a big umbrella feature gate. It takes control of vendor-agnostic controllers. Without this feature gate on, the entire CSI Migration feature is disabled.
  • If only CSIMigration{vendor} feature flag is enabled, nothing will change on the cluster behavior. This feature gate controls the vendor-specific logic.
  • Both CSIMigration and CSIMigration{vendor} need to be enabled on Kubernetes Components, including scheduler, KCM, Kubelet, for CSI Migration to take effect.
  • InTreePlugin{vendor}Unregister is a standalone feature gate that can be enabled and disabled even out of CSI Migration scope. The name speaks for itself, when enabled, the component will not register the specific in-tree storage plugin to the supported list. If the cluster operator only enables this flag, they will get an error from PVC saying it cannot find the plugin when the plugin is used. The cluster operator may want to enable this regardless of CSI Migration if they do not want to support the legacy in-tree APIs and only support CSI going forward.
  • The table below assumes CSIMigration is enabled whenever CSIMigration{vendor} is on, since if not, there will be no effect to the behaviors. The table does not take into account feature gates on kube-scheduler, the feature gates for it should be enabled align with kube-controller-manager otherwise the volume topology && volume limit function could be impacted.

Kube-Controller-Manager	Kubelet	Expected Behavior Change
CSIMigration{vendor} On	CSIMigration{vendor} On	Fully migrated. All operations serviced by CSI plugin. From user perspective, nothing changed.
CSIMigration{vendor} On	CSIMigration{vendor} Off	InTreePlugin{vendor}Unregister enabled on Kubelet: Broken state, Provision/Delete/Attach/Detach by CSI, Mount/Unmount not function. InTreePlugin{vendor}Unregister enabled on KCM: Provision/Deletion/Attach/Detach by CSI, Mount/Unmount by in-tree. InTreePlugin{vendor}Unregister disabled at all: Provision/Deletion by CSI, other operations by In-tree.
CSIMigration{vendor} Off	CSIMigration{vendor} On	Broken state. Operations like volume provision will still work. But operations like volume Attach/Mount will be broken
CSIMigration{vendor} Off	CSIMigration{vendor} Off	No behavior change

• Can the feature be disabled once it has been enabled (i.e. can we roll back the enablement)?

  • Yes - can be disabled by disabling feature flags. Please refer to the upgrade/downgrade sections on how to downgrade the cluster to roll back the enablement.

  • For InTreePlugin{vendor}Unregister, yes we can disable the feature gate once we enabled. This will register the corresponding in-tree storage plugin into the supported list and user will be able to use it to do all storage related operations again.

• What happens if we reenable the feature if it was previously rolled back?

• The CSI migration feature will start to work again. The out-of-tree CSI driver will start to work instead of in-tree plugin again.
• For InTreePlugin{vendor}Unregister, if we enabled the feature the plugin will not be supported. And when we reenable it, it will again unregister the storage plugin at the component restart time and then the specific storage plugin will become unavailable again to the end user. For any workload that is already using the in-tree plugin, running workloads will not be impacted. But new operations like Provision/Deletion/Attach/Detach/Mount/Unmount will not be available if CSI migration for the specific plugin is not enabled.

• Are there any tests for feature enablement/disablement? We have CSI Migration e2e test for each plugin that are implemented and maintained by each driver maintainer. Specifically, for each in-tree plugin corresponding CSI drivers, it havs

  • Full k8s storage e2e tests
  • Migration enabled functional e2e tests. For example:
    • GCE PD migration testgrid.
    • AWS EBS migration testgrid
    • Azuredisk migration testgrid.
    • Azurefile has migration testgrid.
    • Openstack has CSI migration tests for GCE/AWS/Azure/Cinder at testgrid. And an upgrade test will be added soon in the future.
  • Upgrade/downgrade/version skew tests that test the transition from feature turning on to off.

  For core K8s, we have unit tests including but not limited to:

  • pkg/volume/csimigration/plugin_manager_test.go
  • All unit tests in the csi-translation-lib staging/src/k8s.io/csi-translation-lib/translate_test.go
  • Controller test with Migration on CSI sidecars: external-provisioner, external-resizer
    • provisioner: pkg/controller/controller_test.go#TestProvisionWithMigration
    • resizer: pkg/resizer/csi_resizer_test.go#TestResizeMigratedPV

  We also have upgrade tests for storage in k8s. The test can be used to create a PVC before migration enabled continues to function after upgrade. We will enhance this test to add more feature coverage if needed.

Rollout, Upgrade and Rollback Planning

• How can a rollout fail? Can it impact already running workloads?
  For CSIMigration and CSIMigration{vendor}

  • The rollout can fail if the ordering of CSIMigration{vendor} flag was wrongly enabled on kubelet and kube-controller-manager. Specifically, if on the node side kubelet enables the flag and control-plane side the flag is not enabled, then the volume will not be able to be mounted successfully.
    • For workloads that running on nodes have not enable CSI migration, those pods will not be impacted.
    • For any pod that is being deleted by node drain before turning on migration and created on new node that has CSI migration turned on, the volume mount will fail and pod will not come up correctly.
  • Additionally, CSI Migration has a strong dependency on CSI drivers. So if the in-tree corresponding CSI driver is not properly installed, any volume related operation could fail.
  • If feature parity is not guaranteed or if any bug exists in the CSI driver/csi-translation-lib, the rollout could fail because pod using the PV could fail to execute provision/delete/attach/detach/mount/unmount/resize operations depend on the bug itself.

  For InTreePlugin{vendor}Unregister

  • rollout of the feature gate will not fail. The component(kube-controller-manager, kubelet) will be able to start and running without failures.
  • However, it can impact running workloads when the feature is enabled on clusters that still have running workloads using the specific in-tree storage plugin, the further operations related to that volume(unmount/detach/delete) will all fail when CSI migration for that plugin is not enabled. This is expected and user should not turn on this feature gate without CSI migration when there are still workloads using the corresponding in-tree storage plugin.
  • There will be no impact when the feature is disabled at cluster runtime with or without workloads.

• What specific metrics should inform a rollback? We have metrics on the CSI sidecar side called csi_operation_duration_seconds and core k8s metrics on both kube-controller-manager and kubelet side called storage_operation_duration_seconds. Both of them have a migrated field to indicate whether this operation is a migrated PV operation.

  • For csi_operation_duration_seconds, we have a grpc_status field
  • For storage_operation_duration_seconds, we have a status field

  If the error ratio of these two metrics has an unusual strike or is keeping at a relatively higher level compared to in-tree model, it means something went wrong and we need a rollback.

• Were upgrade and rollback tested? Was the upgrade->downgrade->upgrade path tested? To turn it on by default in Beta, we require each in-tree plugin to at least manually test the upgrade->downgrade->upgrade path. For GA, we require such test exists in each driver's test CI.

• Is the rollout accompanied by any deprecations and/or removals of features, APIs, fields of API types, flags, etc.? There will not be API removal in CSI migration itself. But eventually when CSI migration is all finished. We will plan to remove all in-tree plugins. So we will have in-tree plugin deprecated when CSIMigration{vendor} goes to beta. And code removal will be required eventually. In addition, some CSI drivers are not able to maintain 100% backwards compatibility, so those drivers need to deprecate certain behaviors.

• vSphere kubernetes#98546.
• Azure drivers links TBD.
• Other providers no deprecations are known.

Monitoring Requirements

• How can an operator determine if the feature is in use by workloads? We have metrics csi_sidecar_duration_seconds on the CSI sidecars and storage_operation_duration_seconds on the kube-controller-manager and kubelet side to indicate whether this operation is a migrated operation or not. These metrics have a migrated field to indicate if this is a migrated operation.

• What are the SLIs (Service Level Indicators) an operator can use to determine the health of the service?

  • Metrics
    • Metric name: csi_sidecar_duration_seconds && storage_operation_duration_seconds, these metrics will have a migrated field
    • [Optional] Aggregation method:
    • Components exposing the metric: CSI sidecars, kubelet, kube-controller-manager
  • Other (treat as last resort)
    • Details: Pod using PVC that is provisioned by tge in-tree plugin storageclass has failure.

• What are the reasonable SLOs (Service Level Objectives) for the above SLIs?

  • SLO with migration on matches the existing plugin's in-tree SLO with offset less than 1%

• Are there any missing metrics that would be useful to have to improve observability of this feature? Node side CSI operation metrics. It will be implemented in the GA phase. GA Update: It has been implemented in Kubernetes#PR#98979.

Dependencies

• Does this feature depend on any specific services running in the cluster?

  • Corresponding CSI Driver for in-tree CSI migration enabled plugin
    • Usage description:
      • Impact of its outage on the feature: in-tree plugin stops working without the CSI Driver properly setup
      • Impact of its degraded performance or high-error rates on the feature: Error or performance decrease will be reflected for volume intensive operation

Scalability

• Will enabling / using this feature result in any new API calls? Yes. If the CSI driver has already been installed before turning on the CSI migration, the informer related API calls will not be counted as new API calls. If not, the following new calls can be added:

  • For volume attach/detach: VolumeAttachment CREATE/DELETE APIs will be called for volume attachment/detachment by kube-controller-manager. VolumeAttachment PATCH API will be called for volume attachment by csi-attacher. One API call for each volume per operation needed. VolumeAttachment LIST/WATCH api will be called by csi-attacher to monitor the VolumeAttachment.
  • For volume provision/delete: PVC LIST/WATCH apis will be called by csi-provisioner to monitor the PVC status. PV CREATE api will be called by csi-provisioner to create PV. PV DELETE api will be called by csi-provisioner to delete PV. PVC/PV PATCH api will be called by csi-provisioner for updating the object. Notice that these new calls from csi-provisioner also mean that we will reduce call from the kube-controller-manager side.
  • When CSI driver is being installed, the deployer will call CSIDriver CREATE api for the object creation. There will also be CSINode PATCH call by kubelet. For each kubelet that installs the driver there will be one PATCH call.
  • csi-provisioner && csi-attacher will call LIST/WATCH api for monitoring CSINode object when provision/attach volume

• Will enabling / using this feature result in introducing new API types? No

• Will enabling / using this feature result in any new calls to the cloud provider? After switching to CSI driver model, all the volume operations including volume provision/deletion/attach/detach/mount/unmount/resize will be running through the CSI driver. So depending on how the CSI driver is designed and implemented, it could vary if there is any new calls being added. For example, gce-pd driver has the in-tree and CSI version of plugin implementation for all the operation mentioned above, once we switch from in-tree to CSI by CSI migration. If the implementation is the same, then there will not be new calls to the cloud provider. However, it is also possible that the plugin maintainer has different implementation so there might be new calls.

• Will enabling / using this feature result in increasing size or count of the existing API objects? General objects that are being used by CSI regardless of migration:

  • CSI migration will require CSI driver to be installed in the cluster so it can add CSI related API objects including CSIDriver, CSINode, VolumeAttachment.
  • The existing Node object will include new labels, specifically the CSI topology that are introduced by the CSI driver, e.g. topology.gke.io/zone=us-central1-b for GCE PD CSI Driver.
  • PV object will have new annotation volume.beta.kubernetes.io/storage-provisioner

  CSI migration specific fields:

  • The size of PV will increase with the new annotation volume.beta.kubernetes.io/migrated-to.
  • For existing in-line volumes, there will be a new field under VolumeAttachment.Spec.Source.VolumeAttachmentSource.InlineVolumeSpec that will be populated if in-line volumes of migrated in-tree plugin is used.
  • For CSINode object that maps to a node which installs CSIDriver, if CSI Migration is turned on, a new annotation will be added storage.alpha.kubernetes.io/migrated-plugins

• Will enabling / using this feature result in increasing time taken by any operations covered by existing SLIs/SLOs? Depending on the design and implementation of the CSI Driver, the operation time taken could vary. In general, it might increase the total time spend because for the CSI sidecar to detect the object in the APIServer and do corresponding change through the unix domain socket might add additional traffic compared to the in-tree plugin model.

  The unix domain socket is the mechanism that kubelet use to communicate with CSI drivers.

• Will enabling / using this feature result in non-negligible increase of resource usage (CPU, RAM, disk, IO, ...) in any components? It should not increasing the resource usage in a significant manner. But each CSI driver deployed on the node could take more CPU and RAM depending on the implementation.

Troubleshooting

• How does this feature react if the API server and/or etcd is unavailable?

CSI sidecars will not be able to monitor the status change of the API object. So all volume related operation will fail. The existing running container should not be impacted. When the feature is not enabled, only provision/deletion/resize should fail.

• What are other known failure modes? For each of them, fill in the following information by copying the below template:

  • Bug in CSI driver or translation library.
    • Detection: How can it be detected via metrics? Stated another way: how can an operator troubleshoot without logging into a master or worker node? Operators should be able to identify issues regarding migrated PV when the two metrics csi_sidecar_operation_seconds and storage_operation_duration_seconds showed error ratio spike.
    • Mitigation: What can be done to stop the bleeding, especially for already running user workloads? Already running workload should not be impacted except when there is pod movement. To stop the bleeding, turn off the feature gate and bring the pod back to the node without CSI migration.
    • Diagnostics: What are the useful log messages and their required logging levels that could help debug the issue? Each CSI sidecars and drivers will have their own logging to help debug. On the kubelet side, kubelet also contains error messages returned by the CSI drivers call. PVC and PV events also show the error messages.
    • Testing: Are there any tests for failure mode? If not, describe why. We do not have specific tests for failure mode. Each driver shall have upgrade/downgrade/version skew tests that can verify the migration is working properly.

• What steps should be taken if SLOs are not being met to determine the problem?

  • Take the CSI driver log, kube-controller-manager log and kubelet log to analyze why the SLOs are not being met. What is the most error status and why is it error.
  • For example, if the error occurs on volume provisioning side, there will be events on the PersistentVolume/PersistentVolumeClaim object to surface some error messages.
    • If the error occurs from CSI driver side, fetch the corresponding csi driver logs as well as the csi-sidecar logs(csi-provisioner in this case). Looking for where the error was thrown and analyze the problem.
    • If the error occurs from Kube-Controller-Manager side, take the Kube-Controller-Manager log and find logs related to pv_controller and pv_controller_base.
    • If everything works fine for provisioning, you should see logs like this on Kube-Controller-Manager:

    I0121 17:33:51.866049       9 event.go:294] "Event occurred" object="default/podpvc-intree" kind="PersistentVolumeClaim" apiVersion="v1" type="Normal" reason="ExternalProvisioning" message="waiting for a volume to be created, either by external provisioner \"pd.csi.storage.gke.io\" or manually created by system administrator"
    I0121 17:33:52.650352       9 pv_controller.go:887] volume "pvc-20b16944-176d-46dc-b164-dd6f9bd07351" entered phase "Bound"
    I0121 17:33:52.650437       9 pv_controller.go:990] volume "pvc-20b16944-176d-46dc-b164-dd6f9bd07351" bound to claim "default/podpvc-intree"
    I0121 17:33:52.665254       9 pv_controller.go:831] claim "default/podpvc-intree" entered phase "Bound"
    

    • And you should expect logs like these in the csi-provisioner:

    I0121 17:33:48.307191       1 csi-provisioner.go:215] Supports migration from in-tree plugin: kubernetes.io/gce-pd
    I0121 17:33:48.532065       1 controller.go:1279] provision "default/podpvc-intree" class "slow": started
    I0121 17:33:48.532186       1 controller.go:527] translating storage class for in-tree plugin kubernetes.io/gce-pd to CSI
    

    • The PV that gets provisioned should have annotations like pv.kubernetes.io/migrated-to: pd.csi.storage.gke.io.
  • If there are issues regarding volume attachment. Check the api server VolumeAttachment objects to see if there are any events or error messages there. Check the pod that needs to attach the volume and see if there are error messages/events there.
    • If the error occurs from CSI driver side, check the CSI driver log and csi-attacher logs to locate the issue.
    • If the error occurs from Kube-Controller-Manager, check the logs from attach_detach_controller to find useful information.
    • If everything works fine for attaching, you should see logs like this on Kube-Controller-Manager:

    util.go:313] "CSI Migration: Translate InTree Volume Spec to CSI" VolumeSpec=&{Volume:nil PersistentVolume:&PersistentVolume{ObjectMeta:{xxx
    operation_generator.go:413] AttachVolume.Attach succeeded for volume "pvc-20b16944-176d-46dc-b164-dd6f9bd07351" (UniqueName: "kubernetes.io/csi/pd.csi.storage.gke.io^projects/UNSPECIFIED/zones/us-central1-b/disks/pvc-20b16944-176d-46dc-b164-dd6f9bd07351") from node "kubernetes-minion-group-c76l"
    

    • And you should expect logs like these in the csi-attacher, this proves that the VolumeAttachment object is created:

    I0121 17:33:54.751633       1 controller.go:208] Started VA processing "csi-5c520a9e6aa4752597d0fcdc01a4fd5106ae643f3d969d3f4fe875d538f06aa1"
    I0121 17:33:54.751669       1 csi_handler.go:218] CSIHandler: processing VA "csi-5c520a9e6aa4752597d0fcdc01a4fd5106ae643f3d969d3f4fe875d538f06aa1"
    I0121 17:33:54.751684       1 csi_handler.go:245] Attaching "csi-5c520a9e6aa4752597d0fcdc01a4fd5106ae643f3d969d3f4fe875d538f06aa1"
    I0121 17:33:54.751693       1 csi_handler.go:424] Starting attach operation for "csi-5c520a9e6aa4752597d0fcdc01a4fd5106ae643f3d969d3f4fe875d538f06aa1"
    

  • If there are issues regarding volume mount, check the error message or event from the pod that need to mount the volume.
    • If the error occurs from the CSI driver side, check the CSI driver log to find the error that has been thrown.
    • If the error occurs from the Kubelet side, check kubelet logs from the node that the pod was assigned to. Also, there will be logs from Kube-Controller-Manager which related to OperationExecutor and OperationGenerator that might provide some other insights related to the issue.
    • You should expect logs from Kubelet regarding mount if it succeeded successfully:

    "MountVolume.MountDevice succeeded for volume \"pvc-20b16944-176d-46dc-b164-dd6f9bd07351\" device mount path \"/var/lib/kubelet/plugins/kubernetes.io/csi/pd.csi.storage.gke.io/******\"
    "MountVolume.SetUp succeeded for volume \"pvc-20b16944-176d-46dc-b164-dd6f9bd07351\"
    

  • One of the most commonly seen failure scenario would be CSI driver is not installed but CSI migration is enabled. This could lead to volume operation failure. You can find logs like following in Kube-Controller-Manager. Note that the following logs also show up in successful cases too. In the error case though, the difference is there is no csi driver to act on it so there is no progress; installing the correct CSI driver should unblock the provisioning:

    I0125 04:59:14.147567      11 pv_controller.go:1730] provisionClaimOperationExternal provisioning claim "default/podpvc-intree": csi migration has been enabled for provisioner: kubernetes.io/gce-pd; waiting for a volume to be created, either by external provisioner "pd.csi.storage.gke.io" or manually created by system administrator
    

    There will also be events on PVC during provisioning

    Normal  ExternalProvisioning  4s (x2 over 4s)  persistentvolume-controller  csi migration has been enabled for provisioner: kubernetes.io/gce-pd; waiting for a volume to be created, either by external provisioner "pd.csi.storage.gke.io" or manually created by system administrator
    

    If the CSI driver is missing but the PVC already exists. Volume attach/detach will fail with the following log in Kube-Controller-Manager:

    E0125 11:54:12.388111       9 util.go:239] Error processing volume "mypvc" for pod "default"/"web-server": error performing CSI migration checks and translation for PVC "default"/"podpvc-intree": in-tree plugin kubernetes.io/gce-pd is migrated on node kubernetes-minion-group-hsv0 but driver pd.csi.storage.gke.io is not installed
    

  • If an error is occurred by a bug in the translation library, one can look at the logs of the csi parameters to see what the csi migration translation result was, the grpc parameters are logged in the CSI driver as well as the corresponding csi sidecars at verbose level 5. For example:

    I0126 07:23:30.882579       1 connection.go:184] GRPC request: {"accessibility_requirements":{"preferred":[{"segments":{"topology.gke.io/zone":"us-central1-b"}}],"requisite":[{"segments":{"topology.gke.io/zone":"us-central1-b"}}]},"capacity_range":{"required_bytes":21474836480},"name":"pvc-34b73b42-2754-4704-bc0a-80f6b089e9d0","parameters":{"csi.storage.k8s.io/pv/name":"pvc-34b73b42-2754-4704-bc0a-80f6b089e9d0","csi.storage.k8s.io/pvc/name":"podpvc-intree3","csi.storage.k8s.io/pvc/namespace":"default","replication-type":"none","type":"pd-standard"},"volume_capabilities":[{"AccessType":{"Mount":{"fs_type":"ext4"}},"access_mode":{"mode":1}}]}
    I0126 07:23:34.864303       1 connection.go:186] GRPC response: {"volume":{"accessible_topology":[{"segments":{"topology.gke.io/zone":"us-central1-b"}}],"capacity_bytes":21474836480,"volume_id":"projects/xxxx/zones/us-central1-b/disks/pvc-34b73b42-2754-4704-bc0a-80f6b089e9d0"}}
    

  • If there is not any obvious error message or information surfaced but the SLOs are still not being meet, please contact your cloud-provider and the CSI driver owner for further assistance.

Implementation History

Major milestones in the life cycle of a KEP should be tracked in Implementation History.

• 2021-02-04 KEP updated with Production Readiness Review Questionnaire
• 2019-01-29 KEP Created
• 2019-01-05 Implementation started

Major milestones for each in-tree plugin CSI migration:

• 1.25
  • Core CSI migration to GA
  • GCE PD CSI migration to GA
  • AWS EBS CSI migration to GA
• 1.24
  • Azuredisk CSI migration to GA
  • OpenStack Cinder CSI migration to GA
  • Azurefile CSI migration to Beta, on by default
  • vSphere CSI migration to Beta, on by default
  • Cephfs CSI migration to Alpha
  • Ceph RBD CSI migration to Beta, off by default
  • Portworx CSI migration to Beta, off by default
• 1.23
  • AWS EBS CSI migration to Beta, on by default
  • Azuredisk CSI migration to Beta, on by default
  • GCE PD CSI migration to Beta, on by default
  • Portworx CSI migration to Alpha
  • Ceph RBD CSI migration to Alpha
• 1.21
  • Azurefile CSI migration to Beta, off by default
  • OpenStack Cinder CSI migration to Beta, on by default
• 1.19
  • vSphere CSI migration to Beta, off by default
  • Azuredisk CSI migration to Beta, off by default
• 1.18
  • vSphere CSI migration to Alpha
• 1.17
  • GCE PD CSI migration to Beta, off by default
  • AWS EBS CSI migration to Beta, off by default
• 1.15
  • Azuredisk CSI migration to Alpha
  • Azurefile CSI migration to Alpha
• 1.14
  • GCE PD CSI migration to Alpha
  • AWS EBS CSI migration to Alpha
  • OpenStack Cinder CSI migration to Alpha